From: Mike Wright <ebwximaurm@mailinator.com>
To: lartc@vger.kernel.org
Subject: Re: [LARTC] 2 WAN - 1 LAN - ping and route problem
Date: Fri, 24 Mar 2006 16:11:57 +0000 [thread overview]
Message-ID: <44241A4D.2060403@mailinator.com> (raw)
In-Reply-To: <1143196274.1612.133.camel@localhost>
Don Gould wrote:
> ClarkConnect Home 3.2
>
> eth0 - WAN - inet - ip:192.168.1.2 gw:192.168.1.1 (connected to my
> www.woosh.co.nz gatway)
> wlan - WAN - private community wireless networt - ip:10.252.16.16
> gw:10.252.16.1
>
> eth1 - LAN - ip:192.168.2.1
>
> # route add -net 10.0.0.0 netmask 255.0.0.0 gw 10.252.16.1
>
>
> [root@bowenvale etc]# route
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref Use Iface
> 10.252.16.0 * 255.255.255.224 U 0 0 0 wlan0
> 192.168.2.0 * 255.255.255.0 U 0 0 0 eth1
> 192.168.1.0 * 255.255.255.0 U 0 0 0 eth0
> 10.0.0.0 10.252.16.1 255.0.0.0 UG 0 0 0 wlan0
> default 192.168.1.1 0.0.0.0 UG 0 0 0 eth0
> [root@bowenvale etc]#
>
> I can ping 10.252.1.7 from the cc box (which is called 'bowenvale').
>
Because you've specifically added a route to that subnet.
> I can't get a ping result from any of the machines connected to the
> LAN(192.168.2.0/24)
>
There doesn't appear to be a route to that subnet defined. It should be
possible to add that route:
"ip route add 192.16.2.0/24 via 192.16.2.1 dev eth1"
> I can ping anything on the internet ok (ie where the ip being pinged is
> located on the default route).
>
Good. That works just the way it should work for a simple network with
only one NIC with the gateway on the same subnet.
> I've had it suggested to me that my problem is that I don't have the NAT
> set up correctly to nat WAN-wlan0 --> LAN-eth1
>
> I've had a look at the multi-WAN module but that seems to be more for
> dealing with two or more wan links where they're both inet.
>
> I want the 10.0.0.0 network on the WAN side of the network because it's
> a public access network, hence needs to be on the other side of my
> firewall.
>
> What am I doing wrong and what should I be doing?
>
I'm going to take a stab at this. Do you have IP forwarding enabled?
This can be accomplished by the following:
"echo 1 > /proc/sys/net/ipv4/ip_forward"
On some linux systems this can be setup automatically by editing the
file "/etc/sysctl.conf" and making this change:
"# Controls IP packet forwarding
net.ipv4.ip_forward = 1"
> Cheers Don
Hope that helps,
Mike Wright :m)
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
prev parent reply other threads:[~2006-03-24 16:11 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2006-03-24 10:31 [LARTC] 2 WAN - 1 LAN - ping and route problem Don Gould
2006-03-24 16:11 ` Mike Wright [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=44241A4D.2060403@mailinator.com \
--to=ebwximaurm@mailinator.com \
--cc=lartc@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.